$ rpki-client -vvf repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa File: 323430323a626538303a3a2f33342d3334203d3e20313331373439.roa (raw, json) Hash identifier: 9oKO6g1ubJMPn+KO0b/5NKvsIE0sjvdEPhP+zwJwgK8= Subject key identifier: 34:16:98:44:E4:A4:F9:2A:6E:11:A8:FD:06:25:F7:49:75:FC:6F:38 Certificate issuer: /CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Certificate serial: 1939FB7288B505C4BF2827D0CD069DD184106CD8 Authority key identifier: 10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa Signing time: Wed 21 Aug 2024 03:02:47 +0000 ROA not before: Wed 21 Aug 2024 02:57:47 +0000 ROA not after: Wed 20 Aug 2025 03:02:47 +0000 asID: 131749 IP address blocks: 2402:be80::/34 maxlen: 34 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:39:fb:72:88:b5:05:c4:bf:28:27:d0:cd:06:9d:d1:84:10:6c:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10FE35B040E8A3D05E5BE9BEE4F0A636952246FF Validity Not Before: Aug 21 02:57:47 2024 GMT Not After : Aug 20 03:02:47 2025 GMT Subject: CN=34169844E4A4F92A6E11A8FD0625F74975FC6F38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d7:52:55:f3:f2:c9:aa:cf:a0:b1:f2:6d:8d: 26:ca:87:21:7f:fc:32:b6:fa:85:ad:83:fa:33:21: 05:68:a3:05:1b:43:74:4e:33:96:85:18:5b:33:93: 93:7b:42:8c:78:1a:22:88:06:34:39:98:e2:14:39: aa:06:4c:bc:54:9b:b5:e5:9d:f6:a0:27:fa:1a:b4: 17:7d:ed:4a:0f:e4:53:c3:d7:4e:a2:ce:ff:ae:5f: 25:b3:7d:62:bd:4f:51:3c:0a:a1:d2:50:10:b2:dc: 31:4a:e7:c7:eb:79:fe:b2:d6:97:d4:18:aa:e5:af: 85:10:bf:df:73:7c:e8:b1:c1:6c:77:ab:4d:c5:67: b6:b2:5e:5c:36:b4:b1:98:ce:77:e7:36:24:ab:6d: 78:ae:f4:3b:04:b5:9f:77:bd:be:9a:e9:c8:f5:52: cc:41:10:10:29:f9:91:92:50:f4:e7:09:36:34:27: eb:da:9c:7a:01:94:11:a0:b5:7a:2d:da:69:99:2a: a2:0d:86:c8:0d:fa:a4:c3:3f:9d:5b:50:15:58:53: e2:96:02:76:58:14:9f:03:bd:72:05:07:b4:af:09: e1:c6:6d:de:9a:02:2a:42:1e:e9:26:1a:1b:17:a1: 82:cc:68:d5:9e:b3:98:e6:2d:ac:83:46:81:b2:cb: d2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:16:98:44:E4:A4:F9:2A:6E:11:A8:FD:06:25:F7:49:75:FC:6F:38 X509v3 Authority Key Identifier: keyid:10:FE:35:B0:40:E8:A3:D0:5E:5B:E9:BE:E4:F0:A6:36:95:22:46:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10FE35B040E8A3D05E5BE9BEE4F0A636952246FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/300f4f37-c7fb-47d0-8a85-ecfd12b915f5/0/323430323a626538303a3a2f33342d3334203d3e20313331373439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:be80::/34 Signature Algorithm: sha256WithRSAEncryption 27:e7:32:98:8d:82:4c:dc:2e:35:5b:4e:d4:b3:0e:d4:41:c9: 5e:d6:98:d1:b2:38:04:ce:74:03:ed:05:cd:e3:59:f1:46:fb: 8d:aa:7d:7d:e5:a9:ca:12:4c:a4:9d:57:9b:14:f7:e3:8a:f6: 26:2c:b3:a8:a9:46:55:50:94:9d:7d:5e:f1:69:76:82:69:8c: 66:1e:6d:a6:46:a9:89:ad:5a:44:05:da:25:96:66:c2:7e:f4: a4:3c:53:a3:72:be:d5:94:9f:fe:8b:62:19:03:9a:55:e3:70: 7f:cc:e6:12:ff:80:f1:82:8c:3b:fa:42:cb:ec:50:d5:9f:fb: 46:58:f1:c3:2a:67:77:0c:81:fa:c3:d0:17:63:5d:4f:97:26: f0:82:37:0e:ba:79:15:c8:dd:29:7d:24:8a:a3:6a:a9:19:e4: 65:f4:b3:43:28:f6:f8:f4:f4:c7:f6:57:8c:28:7b:ae:63:8e: 16:09:d9:70:5f:ee:8a:31:05:f3:fa:69:bb:54:1c:a5:13:de: ab:87:9b:db:f8:af:78:5c:84:ca:8c:d3:e6:ec:3c:c0:33:6e: ae:08:3d:c5:8f:c9:25:68:57:95:95:c0:98:6f:93:f0:53:45: d0:f7:b9:38:26:b1:15:1e:12:36:fe:32:ef:01:51:6a:a5:f5: 13:06:96:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUGTn7coi1BcS/KCfQzQad0YQQbNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5 NTIyNDZGRjAeFw0yNDA4MjEwMjU3NDdaFw0yNTA4MjAwMzAyNDdaMDMxMTAvBgNV BAMTKDM0MTY5ODQ0RTRBNEY5MkE2RTExQThGRDA2MjVGNzQ5NzVGQzZGMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj11JV8/LJqs+gsfJtjSbKhyF/ /DK2+oWtg/ozIQVoowUbQ3ROM5aFGFszk5N7Qox4GiKIBjQ5mOIUOaoGTLxUm7Xl nfagJ/oatBd97UoP5FPD106izv+uXyWzfWK9T1E8CqHSUBCy3DFK58fref6y1pfU GKrlr4UQv99zfOixwWx3q03FZ7ayXlw2tLGYznfnNiSrbXiu9DsEtZ93vb6a6cj1 UsxBEBAp+ZGSUPTnCTY0J+vanHoBlBGgtXot2mmZKqINhsgN+qTDP51bUBVYU+KW AnZYFJ8DvXIFB7SvCeHGbd6aAipCHukmGhsXoYLMaNWes5jmLayDRoGyy9IfAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUNBaYROSk+SpuEaj9BiX3SXX8bzgwHwYDVR0j BBgwFoAUEP41sEDoo9BeW+m+5PCmNpUiRv8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MDBmNGYzNy1jN2ZiLTQ3ZDAtOGE4NS1lY2ZkMTJiOTE1ZjUvMC8xMEZFMzVCMDQw RThBM0QwNUU1QkU5QkVFNEYwQTYzNjk1MjI0NkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBGRTM1QjA0MEU4QTNEMDVFNUJFOUJFRTRGMEE2MzY5NTIy NDZGRi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMwMGY0ZjM3LWM3ZmItNDdkMC04 YTg1LWVjZmQxMmI5MTVmNS8wLzMyMzQzMDMyM2E2MjY1MzgzMDNhM2EyZjMzMzQy ZDMzMzQyMDNkM2UyMDMxMzMzMTM3MzQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBiQCvoAAMA0GCSqG SIb3DQEBCwUAA4IBAQAn5zKYjYJM3C41W07Usw7UQcle1pjRsjgEznQD7QXN41nx RvuNqn195anKEkyknVebFPfjivYmLLOoqUZVUJSdfV7xaXaCaYxmHm2mRqmJrVpE BdollmbCfvSkPFOjcr7VlJ/+i2IZA5pV43B/zOYS/4Dxgow7+kLL7FDVn/tGWPHD Kmd3DIH6w9AXY11PlybwgjcOunkVyN0pfSSKo2qpGeRl9LNDKPb49PTH9leMKHuu Y44WCdlwX+6KMQXz+mm7VBylE96rh5vb+K94XITKjNPm7DzAM26uCD3Fj8klaFeV lcCYb5PwU0XQ97k4JrEVHhI2/jLvAVFqpfUTBpZU -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org